Security News > 2019 > June > SandboxEscaper Debuts ByeBear Windows Patch Bypass

SandboxEscaper Debuts ByeBear Windows Patch Bypass

2019-06-07 15:27

SandboxEscaper is back, with a second bypass for the recent CVE-2019-0841 Windows patch.

News URL

https://threatpost.com/sandboxescaper-byebear-windows-bypass/145470/

#bypass #patch #windows #CVE-2019-0841

Related news

Windows Patch Tuesday hits snag with Citrix software, workarounds published (source)
7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now (source)
Don't want your Kubernetes Windows nodes hijacked? Patch this hole now (source)
Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2019-04-09	CVE-2019-0841	Link Following vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. local low complexity microsoft CWE-59	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.